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Prior Art 




Figure 1 




Figure 2 
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Encrypted Digital Signature of CA 1 



CERTIFICATE 

Serial Number: X23RG32986 

issued by: Certification Authority 1 

Issued to: Mr A 
Description of credentials: 

* Access to Salaries 

* Access to Accounts 

* Level 4 Security Clearance 

* Overwrite Level 3 

Validity Period: 1 st May 2000 to 

1st July 2002 

Public Key of: Mr B 



Figure 3 
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Figure 4 
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Mr A requests information from Information 
site and supplies address of Mr A's Website. 



Mr A signs request with encoded information 
identifying Mr A using Mr A's private key. 



Information site goes to Mr A's website and 
reauests credentials. 



Mr A's website supplies requested credentials, which 
include Mr A's public key, together with relevant 
certificates going back to original issuers. 



Information site extracts Mr A's public key 
and obtains the public keys of each issuer of a 
certificate that is to be checked. 



Information site checks the validity of the 
Certificates received from Mr A. 
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Change in circumstances regarding Mr A's 
credentials requiring updating or removal of 
some of Mr A's credentials issued by CA1. 



Removal of credential. 



Identify certificates associated with 
credentials to be removed. 



Update a Certificate Revocation List provided 
at CA 1 with the serial number of the 
certificate to be revoked. 



\ 



CA 1 requests access to storage structure at Mr 1 40 
A's website to update or delete credentials. 



CA1 signs request with encoded information 142 
identifying CA 1 using CA l's private key. / 



Mr A's website uses CA1 public key to 
decode signed part of request from CA1. 




From the subset of credentials issued by C A 1 , / 
the website allows those credentials specified / 
by CA1 to be updated or deleted 



END 



Figure 6 
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Mr A selects credentials to be proxied, the 
duration of the proxy and the intended 
recipient (Mr B). 




r 


Mr A creates a Certifu 
the selected 


;ate of Authority using 
information. 



Mr A digitally signs the Certificate of Authority 
using its own private encryption key 



Mr A sends selected credentials including Mr 
A's public key, the digitally signed certificate 
containing Mr B'spublic key and any other 
certificates relating to the selected credential 
to Mr B's website. 



At Mr B's website, Mr B decodes the digitally 
sisned certificates. 




The proxied credentials are useable. \^ 166 



Mr B makes the credentials available at its 
website together with Mr B's public key via 
Mr A's certificate or its credentials. 



END \ - 



Figure 7 
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Encrypted Digital Signature of Mr A 



CERTIFICATE 

Serial Number: X23RF00546 
Issued by: Mr A 
Issued to: Mr B 
Description of credentials: 

* Access to Salaries 

* Access to Accounts 

* Level 4 Security Clearance 

Validity Period: 21 st May 2001 to 

1st July 2002 

Public Key of: Mr B 



Figure 8 
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